20,219 questions
Yes, Latest Cumulative Update updates all Windows Features on Demand (AKA capabilities)
Now that Windows Server has built-in OpenSSH server, does Windows updates install patches / version upgrades for this OpenSSH server too?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 11%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH3%3C/text%3E%3C/svg%3E)
hgelh-3450
26
Reputation points
As title.
We are using Win2019. Although you need to do some one-off extra steps to install/enable the SSH server feature, I consider this as a built-in feature that comes with Windows.
I checked the registered services in Windows, learned that it is in fact a OpenSSH installed in c:\Windows\System32\OpenSSH folder.
From one of our Win2019 servers with latest Windows Updates installed (as at Dec2023), I see that the installed OpenSSH version info is,
Product name: OpenSSH for Windows
File version: 7.7.2.2
Product version: OpenSSH_7.7p1 for Windows
For reference, the latest version from openssh.com is 9.6
There might be different branches, I don't know (e.g. for Windows and for Linux?). No matter what, my concerns is, do I need to take care of security patches, version upgrades (also for security reason) of this built-in OpenSSH server, or Win2019's Windows Updates will take care of it for me?
Windows for business | Windows Server | User experience | Other
Accepted answer
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 83%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
abbodi86 4,036 Reputation points2023-12-22T20:25:42.5866667+00:00 -
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 45%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETH%3C/text%3E%3C/svg%3E)
Tamas Hegedus 6 Reputation points2024-04-26T18:52:20.34+00:00 For the record, I checked today, my version of sshd on Win 10 prof appears to be two years old.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 46%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJS%3C/text%3E%3C/svg%3E)
James Shaw 11 Reputation points2024-05-31T10:47:31.31+00:00 This is not correct. I run Windows updates on a regular 2 and 4th weekly basis every month, on both Windows 2019 and 2022 servers and can confidently say, Windows Updates does NOT update OpenSSH.
I installed it via windows features, and got 8.1 on 2022 and 7.x on 2019, this is several months ago now and still, Windows Updates has not updated it.
I had to manually remove the older versions, and get the latest one from GitHub from the Official GitHub and even then, that is not the latest version of OpenSSH and install it.
This is really, really bad for a built-in management tool, this should be managed and updated regularly both in GitHub as well as the update schedule, but its not.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 21%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWW%3C/text%3E%3C/svg%3E)
Willy Wang 20 Reputation points2024-06-05T07:12:23.0966667+00:00 Our three servers in Windows Server 2019 recently refreshed windows update. openssh version still stays at 7.7. It could become uncertain if we remove the built-in openssh and replace it with another installation package no matter from github or other unknown sources.
Sign in to comment -
3 additional answers
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous2023-12-27T01:23:55.8833333+00:00 Hello,
Thank you for posting in Q&A forum.
Yes, it would be updated via Microsoft updates as part of the operating system.
The OpenSSH open source project is managed by developers at the OpenBSD Project. The Microsoft fork of this project is in GitHub( https://github.com/PowerShell/openssh-portable ).
You can check below link for reference:
https://learn.microsoft.com/en-us/windows-server/administration/openssh/openssh_overview
I hope this helps! Let me know if you have any other questions.
-
James Shaw 11 Reputation points
2024-05-31T10:48:22.1966667+00:00 This is not correct that Windows Updates will keep it up to date. I run Windows updates on a regular 2 and 4th weekly basis every month, on both Windows 2019 and 2022 servers and can confidently say, Windows Updates does NOT update OpenSSH.
I installed it via windows features, and got 8.1 on 2022 and 7.x on 2019, this is several months ago now and still, Windows Updates has not updated it.
I had to manually remove the older versions, and get the latest one from GitHub from the Official GitHub and even then, that is not the latest version of OpenSSH and install it.
This is really, really bad for a built-in management tool, this should be managed and updated regularly both in GitHub as well as the update schedule, but its not.
-
hgelh-3450 26 Reputation points
2024-07-02T05:01:36.1266667+00:00 Take this latest version of OpenSSH and the vulnerabilities it fixes for example, will we get patch for them by Windows Updates anytime soon?
https://www.openssh.com/txt/release-9.8
If we won't get official answer here, where/who should I ask?